1Panel-dev/1Panel
1
1
Fork 0
mirror of https://github.com/1Panel-dev/1Panel.git synced 2025-12-11 12:56:10 +08:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix: Add chain existence check during firewall rule initialization

Browse source
This commit is contained in:
ssongliu 2025-12-03 12:04:01 +08:00
parent ba999c516a
commit b9c5438f11
1 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
agent/init/firewall/firewall.go
View file

@ -27,6 +27,19 @@ func Init() {
settingRepo := repo.NewISettingRepo()
if clientName == "ufw" || clientName == "iptables" {
if err := iptables.AddChain(iptables.FilterTab, iptables.Chain1PanelForward); err != nil {
global.LOG.Errorf("add forward chain failed, err: %v", err)
return
}
if err := iptables.AddChain(iptables.NatTab, iptables.Chain1PanelPreRouting); err != nil {
global.LOG.Errorf("add prerouting chain failed, err: %v", err)
return
}
if err := iptables.AddChain(iptables.NatTab, iptables.Chain1PanelPostRouting); err != nil {
global.LOG.Errorf("add postrouting chain failed, err: %v", err)
return
}
global.LOG.Infof("init iptables chains for forward successfully")
if err := iptables.LoadRulesFromFile(iptables.FilterTab, iptables.Chain1PanelForward, iptables.ForwardFileName); err != nil {
global.LOG.Errorf("load forward rules from file failed, err: %v", err)
return